CVE-2015-4506

EPSS 8.0%

Published: 9/24/2015Modified: 4/28/2026

Description

Buffer overflow in the vp9_init_context_buffers function in libvpx, as used in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3, allows remote attackers to execute arbitrary code via a crafted VP9 file.

Affected packages (1)

Debian/libvpxfrom 0, < 1.4.0-4

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-4506